{ config, pkgs, ... }:

{
    boot.kernelPackages = pkgs.linuxPackages_6_6;
    # Bootloader.
    boot.loader.systemd-boot.enable = true;
    boot.loader.efi.canTouchEfiVariables = true;

    imports =
        [ # Include the results of the hardware scan.
            ./hardware-configuration.nix
            ../common.nix
            ../workstation.nix
        ];

    networking.hostName = "p14s"; # Define your hostname.

    users.users.dm.extraGroups = [ "video" ];
    programs.light.enable = true;
    services.tlp.enable = true;

    networking.firewall = {
    allowedUDPPorts = [ 51820 ]; # Clients and peers can use the same port, see listenport
  };
  # Enable WireGuard
  networking.wireguard.interfaces = {
    wg0 = {
      ips = [ "10.100.0.2/24" ];
      listenPort = 51820; 
      privateKeyFile = "/home/dm/.wireguard/p14s";

      peers = [
        { # dmeiburg
          publicKey = "jc61U+bmIT8lNxirhjrxpB+rELLUoPhLmUKvUpo/OjY=";

          allowedIPs = [ "10.100.0.0/24"];

          endpoint = "152.53.0.23:51820"; 

          persistentKeepalive = 25;
        }
      ];
    };
  };

    system.stateVersion = "23.05"; # Did you read the comment?

}